Previous Job
Security Analyst (ISE5)
Ref No.: 18-06782
Location: Charlotte, North Carolina
Duration: 5 month(s)


Job Description:

Develops specifications for extremely complex computer network security/protection technologies for company information and network systems/applications. Develops security solutions for the company's networks and virtual private networks, application systems, key public infrastructures, authentication and directory services to ensure the security of the network and confidential data. Identifies emergent vulnerabilities, evaluates associated risks and threats, and designs network vulnerability scans to identify security vulnerabilities and provides remediation alternatives to the customer. Serves as technical lead responsible for specific areas of computer security incident response activities to include intrusion detection monitoring, scanning, cyber threat reporting, and development/implementation of vulnerability mitigation strategies. Leads security risk assessments to ensure compliance with corporate security policies and adherence to best practices. Leads the evaluation of vendor proposals, new and existing security designs, and emerging security technologies and systems. Serves as a high level technical security resource on large-scale network and/or systems/applications issues. May direct or serve as a mentor to less experienced staff.: 7+ years of experience in security applications and systems.

Required Qualifications:
• 5+ years of Splunk experience including Splunk SPL
• 5+ years of designing and managing Splunk Dashboards, Reports, Lookup Tables, and Summary Indexes
• 5+ years of experience using Splunk to correlate, analyze and report on database activity events and have working knowledge with regular expressions to effectively extract key tokens of data into meaningful fields
• 5+ years of data management skills including data modeling, data integrity and data quality
• 5+ years of hands-on experience with database platforms (i.e. Oracle, SQL Server, DB2)
• 4+ years of experience with managing database audit events and audit records Desired Qualifications
• Experience with Guardium or other Database Activity Monitoring products
• Knowledge of how to customize Splunk Dashboards via the XML source
• Knowledge of the Splunk Common Information Model and how to apply it directly and indirectly to data feeds
• Knowledge and understanding of application security planning and security architecture
• Knowledge and understanding of information security risk assessment or audit
• Knowledge and understanding of common cybersecurity threat vectors